[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Will 2.4.20 Source be patched for the latest kernel vulnerability?

on Wed, Dec 03, 2003 at 01:31:29PM +0000, Dale Amon (amon@vnl.com) wrote:
> On Wed, Dec 03, 2003 at 03:21:57PM +0200, Riku Valli wrote:
> > This is reason why i ask what about stock kernels, because i belive i am not
> > lonely cowboy at the middle of the no where. Debian is distrubution and
> Probably not... it is just that amongst a security conscious
> group you are likely to find that most will build their own
> kernels and add their own security patches. Paranoia is your friend
> in security.

This speaks a bit to the Gentoo approach.... It sounds good in theory.
In practice, you've got a lot of gearheads with grease all over their
hands, blue smoke out the pipe, and an engine that's more roar than go.
Sure, they're having fun, but the metrics don't bear out the performance

Having a team that shares experience and combines talents in patching a
kernel and tuning it to secure configurations is a preferable approach.
While you _might_ do well on your own, the typical admin doesn't have
these skills.  The group security profile is likely better on a
group-configured kernel.  Mind you might compile on your own, but you're
at least starting from a better base.


Karsten M. Self <kmself@ix.netcom.com>        http://kmself.home.netcom.com/
 What Part of "Gestalt" don't you understand?
   Geek for hire:  http://kmself.home.netcom.com/resume.html

Attachment: pgp7RNCvl_kTH.pgp
Description: PGP signature

Reply to: